Mozilla Firefox Security Update (mfsa_2025-14) - Mac OS X

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

VMware Workstation Multiple Vulnerabilities (VMSA-2025-0004) - Windows

VMware Workstation is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:vmware:workstation";...

Mozilla Thunderbird Security Update (mfsa_2025-17) - Mac OS X

Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...

Linux Distros Unpatched Vulnerability : CVE-2024-42458

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - server.c in Neat VNC aka neatvnc before 0.8.1 does not properly validate the security type, a related issue to CVE-2006-2369. CVE-2024-42458 Note that Nessus...

Linux Distros Unpatched Vulnerability : CVE-2022-49120

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: pm8001: Fix task leak in pm8001sendabortall In pm8001sendabortall, make sure to free the allocated sas task if pm8001tagalloc or pm8001mpibuildcmd fail...

Linux Distros Unpatched Vulnerability : CVE-2022-28048

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - STB v2.27 was discovered to contain an integer shift of invalid size in the component stbijpegdecodeblockprogac. CVE-2022-28048 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2021-4070

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Off-by-one Error in GitHub repository v2fly/v2ray-core prior to 4.44.0. CVE-2021-4070 Note that Nessus relies on the presence of the package as reported by the...

Linux Distros Unpatched Vulnerability : CVE-2022-48886

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ice: Add check for kzalloc Add the check for the return value of kzalloc in order to avoid...

Linux Distros Unpatched Vulnerability : CVE-2023-38592

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.6 and iPadOS 16.6, watchOS 9.6, tvOS 16.6, macOS Ventura 13.5. Processing...

Linux Distros Unpatched Vulnerability : CVE-2023-33817

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability. CVE-2023-33817 Note that Nessus relies on the presence of the package as reported by...

Linux Distros Unpatched Vulnerability : CVE-2021-3828

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nltk is vulnerable to Inefficient Regular Expression Complexity CVE-2021-3828 Note that Nessus relies on the presence of the package as reported by the vendor...

Linux Distros Unpatched Vulnerability : CVE-2021-39262

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A crafted NTFS image can cause an out-of-bounds access in ntfsdecompress in NTFS-3G 2021.8.22. CVE-2021-39262 Note that Nessus relies on the presence of the...

Linux Distros Unpatched Vulnerability : CVE-2022-23837

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of days when requesting stats for the graph. This overloads the system, affecting...

Linux Distros Unpatched Vulnerability : CVE-2023-48368

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper input validation in IntelR Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access...

Linux Distros Unpatched Vulnerability : CVE-2022-49222

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/bridge: anx7625: Fix overflow issue on reading EDID The length of EDID block can be long...

Linux Distros Unpatched Vulnerability : CVE-2024-35866

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifsdumpfullkey Skip sessions that are being teared down...

Linux Distros Unpatched Vulnerability : CVE-2023-42883

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, macOS Sonoma 14.2, iOS 17.2 and iPadOS 17.2, watchOS 10.2, tvOS 17.2,...

Linux Distros Unpatched Vulnerability : CVE-2023-32370

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fai...

Linux Distros Unpatched Vulnerability : CVE-2024-29510

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device. CVE-2024-29510 Note...

Linux Distros Unpatched Vulnerability : CVE-2022-46329

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Protection mechanism failure for some IntelR PROSet/Wireless WiFi software may allow a privileged user to potentially enable escalation of privilege via local...